Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 95cc84a7 authored by Alex Deymo's avatar Alex Deymo
Browse files

Replace OTA sideload verification key when signing A/B devices. 

The update-payload-key is used by update_engine_sideload from recovery
to verify an update payload.

Bug: 27178350

(cherry picked from commit b3e8ce6d)

Change-Id: Iac239732251e550e9966bf284b68bc9d578f22ff
parent 5134712d

tools/releasetools/sign_target_files_apks.py

+5 −0
Original line number Diff line number Diff line
@@ -255,6 +255,7 @@ def ProcessTargetFiles(input_tf_zip, output_tf_zip, misc_info, 
    elif (OPTIONS.replace_ota_keys and

          info.filename in (

              "BOOT/RAMDISK/res/keys",

              "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",

              "RECOVERY/RAMDISK/res/keys",

              "SYSTEM/etc/security/otacerts.zip",

              "SYSTEM/etc/update_engine/update-payload-key.pub.pem")):
@@ -510,6 +511,10 @@ def ReplaceOtaKeys(input_tf_zip, output_tf_zip, misc_info): 
        output_tf_zip,

        "SYSTEM/etc/update_engine/update-payload-key.pub.pem",

        pubkey)

    common.ZipWriteStr(

        output_tf_zip,

        "BOOT/RAMDISK/etc/update_engine/update-payload-key.pub.pem",

        pubkey)



  return new_recovery_keys